IN THE CLAIMS : 

Please AMEND claims 1-12 as shown below. 
Please ADD new claim 13 as shown below. 

1. (Currently Amended) A system for remotely and transparently managing 
security associations o f Int e met Protocol Security intemet protocol security, the system 
comprising: 

an application device , said application device comprising at least on e managem e nt 
cli e nt for issuing s e curity association managem e nt requ es ts ; 

a service device comprising an Intemet Protocol Security servic e one or more 
Int e met Protocol S e curity servic e s, and a management s e rv e r configured to r e ceiv e for 
rec e iving said s e curity association managem e nt r e quests issu e d from said at least one 
management client and for responding, in connection with said Intemet Protocol Security 
service means, to said security association management requ e st s received at said 
manag e ment s e rver; and 

a communication networ k configured to connect said application device to said 
service device: for connecting s aid application d e vice to said s ervice d e vice. 

an intemet protocol security service unit configured to provide one or more 
internet protocol security services comprising at least one of authentication services 
and encryption services, said intemet protocol security service unit deployed in said 
service device: 
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at least one management client configured to issue security association 
management requests to create and manage, with a session key management protocol, 
security associations for use by said provided intemet protocol security services, said at 
least one management client deployed in said application device; and 

a management server configured to receive said security association management 
requests issued from said at least one management client and to respond, in connection 
with said intemet protocol security service unit, to said security association management 
requests received at said management server, said management server deployed in said 
service device. 

2. (Currently Amended) The system according to claim 1, wherein said 
application device further comprises an interface configured to provide communication 
m e ans for providing an int e rfac e for communicating b etween said at least one 
management client associated with said application device and said management server. 

3. (Currently Amended) The system according to claim 1, wherein said security 
association management requests comprise includ e at least one of adding requests 
configured to add for adding security associations, deleting requests configured to delete 
for d e l e ting security associations, and querying requests configured to query for querying 
about security associations. 
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4. (Currently Amended) The system according to claim 2, wherein said interface 

is further configured m oans aro arranged to use sockets for communication with said 

I 

management server. 

5. (Currently Amended) The system according to claim 2, wherein said interface 
comprises m e ans includes data structures used in communication between said 
management client and said management server. 

6. (Currently Amended) The system according to claim 2, wherein said interface 
m e ans ar e is_implemented as a software library linked dynamically or statistically into a 
corresponding management client. 

7. (Currently Amended) The system according to claim 1, wherein said intemet 
protocol security Intem e t Protocol S e curity service unit and said management server are 
configured arrang e d to use a local communication channel for communications between 
said intemet protocol security Int e rnet Protocol S e curity service unit and said 
management server. 

I 

8. (Currently Amended) The system according to claim 1, wherein at least one 
application device comprises two or more mianagement clients, and wherein at least two 
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of said management clients are configured to u se different session key management 
protocols. 

9. (Currently Amended) The system according to claim 1, wherein said 
communication network comprises a Local Ar e a Networ k local area network . 

10. (Currently Amended) A method of fef-remotelv and transparently managing 
security associations of internet protocol security Intern e t Protocol S e curity , the method 
comprising th e st e ps of : 

providing one or more internet protocol security services Intemet Protocol 
Security services comprising at least one of authentication services and encryption 
services i fl-a ^from an intemet protocol security service devie eunit, said intemet protocol 
security service unit being deployed in a service device : 

issuing security association management requests to create and manage, with a 
session key management protocol security associations for use by said provided intemet 
protocol security services, from an application d e vic e at least one management client, 
said at least one management client being deployed in an application device: 

receiving in said s e rvice device a management server said security association 
management requests issued from said application d e vic e at least one management client : 
and 
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responding, in connection with an internet protocol security I nt e rnet Protocol 
Security service unit , to said security association management requests received in said 
service devic e . at said management server, said management server being deployed in 
said service device, 

w^herein said application device being-is connected to said service device by a 
communication network. 

11. (Currently Amended) The method according to claim 10, wherein said issuing 
comprises communicating at least one of said security association management requests 
issued from an application device and corresponding responses ar e communicat e d v ia an 
interface associated with said application device. 

12. (Currently Amended) The method according to claim 10, wherein said issuing 
comprises issuing said security association management requests comprising i nclude at 
least one of adding requests for adding security associations, deleting requests for 
deleting security, and querying requests for querying about security associations. 

13. (New) A system of remotely and transparently managing security associations 
of internet protocol security, the system comprising: 

application means; 
servicing means; 
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communication means for connecting said application means with said servicing 

means; 

internet protocol security service nleans for providing one or more internet 
protocol security services comprising at least one of authentication services and 
encryption services, said internet protocol security service means being deployed in 
said servicing means; 

at least one management client means for issuing security association 
management requests to create and manage, with a session key management 
protocol, security associations for use by said provided internet protocol security 
services, said at least one management client means being deployed in said 
application means; and 

management server means for receiving said security association management 
requests issued from said at least one management client means and for responding, in 
connection with said intemet protocol security service unit, to said security association 
management requests received at said management server, said management server 
means being deployed in said servicing means. 
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